VYPR

npm package

@zowe/imperative

pkg:npm/%40zowe/imperative

Vulnerabilities (1)

  • CVE-2021-4326Feb 22, 2023
    affected >= 5.0.0, < 5.7.1fixed 5.7.1

    A vulnerability in Imperative framework which allows already-privileged local actors to execute arbitrary shell commands via plugin install/update commands, or maliciously formed environment variables. Impacts Zowe CLI.